CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-22175

An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series and SRX Series allows an unauthenticated networked attacker to cause a flowprocessing daemon (flowd) crash and thereby a Denial of Service (DoS). Continued receipt of these specific packets will cause a sustained Denial of Service condition. This issue can occur in a scenario where the SIP ALG is enabled and specific SIP messages are being processed simultaneously. This issue affects: Juniper Networks Junos OS on MX Series and SRX Series 20.4 versions prior to 20.4R3-S1; 21.1 versions prior to 21.1R2-S2, 21.1R3; 21.2 versions prior to 21.2R1-S2, 21.2R2; 21.3 versions prior to 21.3R1-S1, 21.3R2. This issue does not affect Juniper Networks Junos OS versions prior to 20.4R1.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 4.3

References

Products affected by CVE-2022-22175

Juniper » Mx10000 » Version: N/A

cpe:2.3:h:juniper:mx10000:-
Juniper » Mx10003 » Version: N/A

cpe:2.3:h:juniper:mx10003:-
Juniper » Mx10008 » Version: N/A

cpe:2.3:h:juniper:mx10008:-
Juniper » Mx10016 » Version: N/A

cpe:2.3:h:juniper:mx10016:-
Juniper » Mx104 » Version: N/A

cpe:2.3:h:juniper:mx104:-
Juniper » Mx10 » Version: N/A

cpe:2.3:h:juniper:mx10:-
Juniper » Mx150 » Version: N/A

cpe:2.3:h:juniper:mx150:-
Juniper » Mx2008 » Version: N/A

cpe:2.3:h:juniper:mx2008:-
Juniper » Mx2010 » Version: N/A

cpe:2.3:h:juniper:mx2010:-
Juniper » Mx2020 » Version: N/A

cpe:2.3:h:juniper:mx2020:-
Juniper » Mx204 » Version: N/A

cpe:2.3:h:juniper:mx204:-
Juniper » Mx240 » Version: N/A

cpe:2.3:h:juniper:mx240:-
Juniper » Mx40 » Version: N/A

cpe:2.3:h:juniper:mx40:-
Juniper » Mx480 » Version: N/A

cpe:2.3:h:juniper:mx480:-
Juniper » Mx5 » Version: N/A

cpe:2.3:h:juniper:mx5:-
Juniper » Mx80 » Version: N/A

cpe:2.3:h:juniper:mx80:-
Juniper » Mx960 » Version: N/A

cpe:2.3:h:juniper:mx960:-
Juniper » Srx100 » Version: N/A

cpe:2.3:h:juniper:srx100:-
Juniper » Srx110 » Version: N/A

cpe:2.3:h:juniper:srx110:-
Juniper » Srx1400 » Version: N/A

cpe:2.3:h:juniper:srx1400:-
Juniper » Srx1500 » Version: N/A

cpe:2.3:h:juniper:srx1500:-
Juniper » Srx210 » Version: N/A

cpe:2.3:h:juniper:srx210:-
Juniper » Srx220 » Version: N/A

cpe:2.3:h:juniper:srx220:-
Juniper » Srx240 » Version: N/A

cpe:2.3:h:juniper:srx240:-
Juniper » Srx240h2 » Version: N/A

cpe:2.3:h:juniper:srx240h2:-
Juniper » Srx300 » Version: N/A

cpe:2.3:h:juniper:srx300:-
Juniper » Srx320 » Version: N/A

cpe:2.3:h:juniper:srx320:-
Juniper » Srx3400 » Version: N/A

cpe:2.3:h:juniper:srx3400:-
Juniper » Srx340 » Version: N/A

cpe:2.3:h:juniper:srx340:-
Juniper » Srx345 » Version: N/A

cpe:2.3:h:juniper:srx345:-
Juniper » Srx3600 » Version: N/A

cpe:2.3:h:juniper:srx3600:-
Juniper » Srx380 » Version: N/A

cpe:2.3:h:juniper:srx380:-
Juniper » Srx4000 » Version: N/A

cpe:2.3:h:juniper:srx4000:-
Juniper » Srx4100 » Version: N/A

cpe:2.3:h:juniper:srx4100:-
Juniper » Srx4200 » Version: N/A

cpe:2.3:h:juniper:srx4200:-
Juniper » Srx4600 » Version: N/A

cpe:2.3:h:juniper:srx4600:-
Juniper » Srx5000 » Version: N/A

cpe:2.3:h:juniper:srx5000:-
Juniper » Srx5400 » Version: N/A

cpe:2.3:h:juniper:srx5400:-
Juniper » Srx550 » Version: N/A

cpe:2.3:h:juniper:srx550:-
Juniper » Srx550 Hm » Version: N/A

cpe:2.3:h:juniper:srx550_hm:-
Juniper » Srx550m » Version: N/A

cpe:2.3:h:juniper:srx550m:-
Juniper » Srx5600 » Version: N/A

cpe:2.3:h:juniper:srx5600:-
Juniper » Srx5800 » Version: N/A

cpe:2.3:h:juniper:srx5800:-
Juniper » Srx650 » Version: N/A

cpe:2.3:h:juniper:srx650:-
Juniper » Junos » Version: 20.4

cpe:2.3:o:juniper:junos:20.4
Juniper » Junos » Version: 21.1

cpe:2.3:o:juniper:junos:21.1
Juniper » Junos » Version: 21.2

cpe:2.3:o:juniper:junos:21.2
Juniper » Junos » Version: 21.3

cpe:2.3:o:juniper:junos:21.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-22175

Products

Pricing

Contact Us